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Arrangement and Method for Adapting Mobile Field Device 



Field of the Invention 

This Invention relates to mobile field devices, such as field com- 
5 puters and maintenance devices. Especially, the invention relates to applica- 
tions that run in the mobile field devices. Furthermore, the invention relates to 
an arrangement for adapting the mobile field device to a use. 

Background of the Invention 

10 Public utilities, such as municipal electricity companies and water 

and sewerage utilities, (or corresponding private utilities) manage large and 
complex systems. The maintenance of the systems must be arranged effi- 
ciently. A traditional way, for example in a municipal electricity company, is 
that maintenance groups, which belong to the company's staff, know their 

15 area, and before performing tasks they go to the office of the company to get 
task lists and, if needed, necessary map sheets. If some unexpected tasks 
occur during the working day, the maintenance groups may be informed and 
Instructed by using a radiophone, mobile phone, normal telephone, or even a 
fax. It may also happen that new map sheets must be picked up from the of- 

20 fice. The control center can be informed about operations made in the field 
using the same ways. Alternatively, the operations can be written down on 
paper and transported to the office or the control center after the tasks are 
completed. 

Some public utilities may use mobile field computers, such as 
25 PDAs (Personal Digital Assistant), for infonming maintenance men in the 
field. However, the field computers must also be updated in the office for the 
use of the day, before performing the tasks. A limited amount of instruction 
data may be delivered to the field computer via wireless communication, but 
larger data amounts are impossible (or very unpractical) to transport since 
30 the capacity of the wireless communication path is limited. After the tasks are 
performed, the field computers may be transported to the control center for 
updating the system in accordance with the operations made. 

FIG. 1 illustrates a simple example of an energy distribution net- 
work in an area. Watercourses are marked with horizontal hatched lines and 
35 larger consumption areas with diamond hatched lines. Main roads are also 
illustrated on the map. The power lines 4 are marked with dashed lines, 
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switching stations 2 with circles, and supply transformers 3 with triangles. 
The generator 1 is marked with a circle with an amplitude current mark. It can 
be induced from the map that the distribution network comprises a great 
number of different elements with their attributes and parameters. For exam- 
5 pie, the energy distribution network of a city of about one million inhabitants 
may comprises 1,2-1,3 million targets (elements). The data amount, which 
is needed to describe a network of this size, is approximately over 100 
Mbytes. 

Nowadays, a trend is that public utilities externalize, for example, 
10 maintenance tasks. One company in the maintenance business may manage 
the maintenance of a very large area and/or of several areas, whereby the 
maintenance men do not any more know their areas and the networks. How- 
ever, the maintenance men work the same way as before: they pick up their 
duties before starting to work and transport information about the operations 
15 made after the work. A problem is that the owner of the public utility (or cor- 
responding private utility) may not desire to give all network information to the 
maintenance man of the external company. On the other hand, the external 
maintenance company may desire to use the same field devices, so it may 
happen that the device may contain information from several different utili- 
20 ties. The security of information is not as guaranteed as when the mainte- 
nance men were in the service of the utility. And as mentioned before, the 
huge amount of data of the systems is also a problem. 

The goal of the invention is to alleviate the above-mentioned prob- 
lems. This is achieved in a way described in the claims. 

25 

Summary of the Invention 

According to the invention, a field mobile terminal, such as a PDA, 
is adapted to a use. The mobile terminal is provided with data, which is di- 
vided into several parts. Each part concerns data connected to a certain 

30 area, and the data of each part has been encrypted by using a specific en- 
cryption key or keys. The provision of data is a preliminary step for adapting 
the mobile terminal and it may be done in an office of a public utility or a cor- 
responding organization. A decryption key (or keys) is location specific. The 
decryption keys are in a special server. When a decryption of a part (or parts) 

35 is needed, the server finds out the location of the mobile terminal. This is 
done by asking for the location information from a special location information 



wo 2004/021639 



PCT/FI2003/000636 



3 



application in a communication network. The application utilizes the location 
infomnation of the mobile network, which is updated in the wireless network 
system, such as in a GSM network. Alternatively, the location information of 
the mobile terminal may be delivered to the server automatically. 
5 If the location information of the mobile terminal and the location 

information of one of said decryption keys matches, the decryption key is 
sent from the server to the mobile terminal preferably via a wireless commu- 
nication path. The mobile terminal may now decrypt the data part in question 
for adapting the terminal for the use required. 

10 

Brief Description of the Drawings 

In the following, the invention is described in more detail by means 
of FIGs 1 - 4 in the attached drawings where: 



15 FIG. 1 illustrates an example of an energy distribution network in an area 
^ level, 

^ FIG^ illustrates an example of dividing the data of an energy distribution 

network into parts, which are location specific, 
J^IG- a, illustrates an arrangement according to the invention, and 
20 ^FIG;3^ illustrates a flow chart that shows an example of the inventive 
method. 



Detailed Description of the Invention 

Suitable data and software must be set up in the mobile field ter- 
25 minal, which can, for example, be a field computer, mobile maintenance de- 
vice, a PDA, or a mobile phone, to adapt it for use. Lets examine an example 
of a power distribution network Illustrated in FIG. 1. If the network information 
is utilized in an efficient and inventive way according to the invention, it must 
be divided into several parts. Preferably, the division may be based on geo- 
30 graphical areas, such as rectangles in a map or other geographically logical 
areas (valleys, mountains etc.), but it may also be based on the structure of 
the distribution network - the area of a distribution substation may be a part. 
However, each part has always some location in a geographical map. 

FIG. 2 shows an example of the division of the power distribution 
35 network based on the rectangles 21. For example, rectangle B11 contains 
the information from one switching station 22, two supply transformers 23, 
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24, and the distribution lines 4 in tlie area of tlie rectangle. When mainte- 
nance men are in the area of B1 1 for performing their tasks, they do not usu- 
ally need information from the other parts of the networic - just the infomnation 
from part B11. The maintenance men carry the mobile field terminal, which 
5 contains all information from the distribution network, but only the information 
of part B1 1 is accessible. The maintenance men can do their tasks in the 
area of 81 1 , and receive new tasks and send performed tasks to the control 
center via a wireless communication path. When they move to another area, 
for example, to part A12, the decryption key of the new area is accessible 

10 from the server, but the key of the old area 811 is no longer accessible. In 
this way, the mobile terminal is always adapted to the use in question. 

The divided (and encrypted) information of the distribution network 
is downloaded to the mobile terminal from a server, which contains the infor- 
mation of the distribution network. Naturally, the server and the mobile termi- 

15 nal are connected to each other during the download. The connection can be 
a cable connection, a connection through a fixed network, or even a connec- 
tion through a wireless network. However, if the connection is through a wire- 
less network, the time required for the download is very long depending on 
the low transmission capacity of the wireless network and the huge data 

20 amount of the network. The wireless solution may be reasonable at nights. It 
may be also needed to download special software for using and utilizing the 
network information. 

Each part of the network information has been encrypted by a part 
specific key (or keys if the encryption is based on several keys). Also the 

25 special software may be divided, according to the division of the information, 
into parts, and encrypted as well. When maintenance of a certain network 
element in a certain area (part) requires special software, it is accessible at 
the same time as the information needed. The encryption may be based on 
key pairs and enough long bit codes etc. 

30 The encrypted information parts (and the pieces of software) make 

it possible that only the part or parts needed are accessible to the mainte- 
nance men. Decryption is needed for accessing the information needed. 
Since the encrypted information is connected to a certain area, i.e. location, 
the decryption key or keys are location specific. The encryption mechanism 

35 may be utilized as key pairs. (Other ways are possible as well.) I.e. the en- 
crypting key and decrypting key of a certain part perform as a key pair. The 
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decryption keys are not in the mobile terminal, but they are in a special 
server from which they have to be transported to the mobile terminal. In order 
to deliver the decryption key or keys needed, the location of the mobile ter- 
minal must be determined. When the location of the mobile tenninai and the 

5 location information of the decryption key matches, the decryption key is 
transported to the mobile terminal wirelessly. in other words, the decryption 
key or keys, corresponding to the location of the mobile terminal, are trans- 
ported to the terminal for decrypting the information (and the piece of soft- 
ware) of the part of that location. When the terminal moves away from the 

10 area the decryption key in the server may again become inaccessible (The 
key is not delivered to the mobile terminal.) based on the location information 
that the mobile terminal gets from the network system (the network system 
has to known the location of the mobile terminal). 

FIG. 3 shows an example of an inventive arrangement. The server 

15 31, wherein the decryption keys 311 lie, preferably finds out the location of 
the mobile terminal 32 from a location service 34 via a network 35. The loca- 
tion service utilizes the location information system 33 of the network to 
which the mobile terminal is connected, normally wirelessly. A very common 
system is the use of the location information system of the mobile network, 

20 such as GSM or UMTS. So the location service gets location information 
from the location information system. 

The server asks for the location information of the mobile terminal 
from the location service. As a response to this enquiry, the location service 
transports the location information. Alternatively the server may ask for the 

25 location information from the mobile terminal itself, but this is not a recom- 
mended way, since it is not so secure. (The mobile terminal should get its lo- 
cation information from the location information system 33 since the location 
information from the mobile terminal may be a fake.) It is also possible that 
the location service (or the mobile terminal) automatically, without any re- 

30 quest, transports location information to the server, so that the server always 
knows the locations of the mobile terminals that are under its service. 

A preferable way is that the mobile terminal asks for a decryption 
key (or keys) from the server, which, as a response, finds the location of the 
mobile tenninai, searches the right decryption key, and transports it to the 

35 mobile terminal. Naturally, in the case of an automatic delivery, no request is 
needed to be sent from the mobile tenminal. 



wo 2004/021639 



PCT/FI2003/000636 



6 



The mobile terminal comprises means 321 for decrypting the part/s 
needed using the decryption l<ey or keys. Further, the mobile terminal com- 
prises means 322 for adapting the mobile terminal for the use. This means 
that not only the decrypted infomiation of the part is saved in the mobile ter- 
5 minal, but also the software needed, and maybe related functions, are in- 
stalled. Furthermore, the mobile terminal may comprise means for requesting 
the decryption key or keys from the server. 

The server comprises the decryption keys 311, as mentioned be- 
fore, and means 312 for providing the mobile terminal with data, which is di- 

10 vided into several parts, each part: concerning data connected to a certain 
area, and said data of each part encrypted by a location specific key. The 
providing means are connected to the mobile terminal for the duration of the 
provision of data. Naturally the providing means may be in another element 
than the server. Further, the server comprises means 313 for finding out the 

15 location of the mobile terminal, means 314 for comparing the location infor- 
mation of the mobile terminal and the location information of said decryption 
keys, and selecting that decryption key (or keys) whose location information 
and the location information of the mobile terminal match, and means 315 for 
sending the selected decryption key (or keys) from the server to the mobile 

20 terminal as a response to the actions of the comparing and selecting means 
314. 

Further, the means for finding out location information may com- 
prise means for requesting the location information of the mobile terminal 
from a location service that is in connection with the server through a com- 

25 munication network, or from the mobile terminal, and means for receiving the 
requested information. 

FIG. 4 shows an example of the inventive method in a flow chart 
form. First the mobile terminal is provided, in step 41, with data, which is di- 
vided into several parts, each part concerning data connected to a certain 

30 area, and said data of each part encrypted by a specific key or keys. When 
the mobile terminal has been provided with the information (and software) 
according to the invention, the next step is taken for adapting the terminal for 
the use, preferably for the current use. The server finds out, in step 42, the 
location of the mobile terminal. In this step, the server may ask for the loca- 

35 tion information preferably from the location service, or the location informa- 
tion may be transported to the server automatically. As mentioned, the server 
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comprises the location specific decryption keys. If the location information of 
the mobile terminal and the location information of one of said decryption 
keys matches, said decryption key or keys are sent, in step 43, from the 
server to the mobile terminal. In the mobile terminal, the part to which said 
5 decryption key matches is encrypted in step 44. And as mentioned, the adap- 
tation of the mobile terminal may contain other tasks along with the decryp- 
tion function. 

It should be noted that location information need not necessarily 
be the only criteria to check the validity to transport the decryption key from 

10 the server to the mobile terminal. Along with the location information, the de- 
cryption key may also be associated with the identification of the mobile ter- 
minal and/or time information. In this way, it is possible to classify users in 
more detail and to increase the security of the data. For example, if the mo- 
bile terminal belongs to a certain subcontractor, it may be desirable to give 

15 him only a certain part of the information. It may also desired that the infor- 
mation of the parts is accessible only during a certain period, then time in- 
formation is needed for the decryption function: the information may be de- 
crypted in day time, but not in evenings or at nights for example. Naturally, 
combinations of different criteria may be used. 

20 The decryption function may not be restricted to one part of the in- 

formation, but it may be useful that several parts are also decrypted at the 
same time. For example, if the maintenance men are in the area of B1 1 in 
FIG. 2, and the server has this location information, the maintenance men 
may be allowed to get an access to the parallel parts of B11 as well, i.e. to 

25 parts A11, C11, A12, B12, and C12. This is convenient to arrange by trans- 
porting the decryption keys of the parallel parts with the decryption key of 
B11. 

The invention makes it possible to use external maintenance com- 
panies in a safe way. The security of the information of a public utility (or pri- 

30 vate utility or another company) is high, since the information itself is not 
transported over a wireless communication path, but only the decryption key 
or keys of the information allowed to be used, is transported. A subcontractor 
has access only to the information needed for his duties. Anyway, wireless 
transmission of huge data amounts requires an unacceptable long period and 

35 is expensive as well. So, the invention saves the transmission capacity of the 
communication network as well and is an economical solution. It is also rela- 
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tively safe to ask for location information from a special location service. The 
alternative is to ask the location information from the mobile terminal, but 
then the security level is lower. So, the information is very quickly In the use 
of the subcontractor in a secure way. 
5 Decryption keys allow various different solutions. A number of 

keys may concern the same area. One key decrypts a small subarea, an- 
other key a larger area, etc. Or one key decrypts certain information in the 
area and another key other information. The decryption keys of several areas 
may be delivered at the same time, or several keys are needed for decrypting 
10 one area. 

One application of the invention may be that when using the identi- 
fication information of the mobile terminal along with the location information, 
certain sensitive information in the part may be decrypted separately from the 
main decryption of the part of the information. The sensitive information is 

15 allowed only to the certain terminal or terminals. Other terminals can decrypt 
the information of the part, but without the sensitive material. As noted, the 
invention is for professional use, concerning maintenance actions of an or- 
ganization, such as different public utilities. It is evident that the invention can 
be used in other ways than described in this text, so it can be used in many 

20 different solutions, in the scope of the inventive idea. 



